To make sure the Emergency Containment Plan is executed as efficiently as possible in the event of an infection, you need to understand your environment well. Follow these tips to be prepared ahead of an incident.
Understanding Network Topology Fundamental to containing a virus infection is understanding the topology of your network. As a preliminary action, create a map, or use a map that you currently have, to section off your network client systems in a way that will allow you to systematically isolate and clean the computers in each section before reconnecting them to your local network. Your map should contain the following information:
Servers - name and address
Clients - name and address
Understanding Security Solutions In addition to understanding your network topology, you need to understand how anti-virus and security products are implemented to protect your network and distribute virus definitions and security updates. Consider the following information:
What security programs are protecting servers and clients.
What is the plan for checking, testing, and installing operating system and network updates.
What is the schedule for updating virus definitions.
What alternative methods of obtaining updates are available if the normal channels are under attack.
What log files are available to administrators.
Understanding Backup Solutions It is imperative that you have critical system information backed up. In the event of a catastrophic virus infection, it may be necessary to restore servers and clients to be sure that your network has not been compromised. Having a backup plan in place with procedures to backup and restore critical systems is essential
Imported Document ID: TECH99406
Subscribing will provide email updates when this Article is updated. Login is required.